Suspected Indian state-backed advanced persistent threat operation SideWinder also known as APT-C-17, T-APT-4, APT-Q-39, Rattlesnake, Hardcore Nationalist, and Razor Tiger has been utilizing server-based polymorphism to facilitate next-stage backdoor delivery in a cyberattack campaign that initially targeted Pakistan government entities in late November before setting sights on Turkey beginning in March, reports The Hacker News.
Article Link: Server-based polymorphism leveraged in new SideWinder APT attacks | SC Media